From: Andy Allan Date: Wed, 3 Aug 2022 16:06:18 +0000 (+0100) Subject: Add a basic security policy. X-Git-Tag: live~1787^2 X-Git-Url: https://git.openstreetmap.org./rails.git/commitdiff_plain/d797dec4ce4605f5b48afca372f452c906d54b6f Add a basic security policy. Fixes #3553 --- diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 000000000..c1ad6e5ac --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,9 @@ +# Security Policy + +## Reporting a Vulnerability + +We welcome any reports of security vulnerabilities, and we will respond to you quickly to acknowledge receipt. + +To report a vulnerability please email [the maintainers using this link](mailto:tom@compton.nu;openstreetmap-website@gravitystorm.co.uk;security@openstreetmap.org). This will also notify the security team for the main deployment of this software. + +Please note that we do not offer any bug bounties and we do not participate in any bug programs. If your security report is validated by us, then we are happy to credit you publicly in our issue tracker, on request.